Join our mailing list
PRIVACY & DATA PROTECTION POLICY
Queer Hearted takes your privacy seriously and are committed to protecting your personal information and working with honesty, transparency and integrity. This policy sets out how we use the information that you provide us with to keep you updated about relevant workshops and events.
Why we collect information
We collect information (or data) to communicate with you about news, opportunities, and upcoming live events. Sometimes we might include other practitioners events in our mailing list because we think they are awesome and we hope you will too. The data we collect for mail outs is a name and an email address. We send about two emails per year keeping you up to date with all of our events.
Additional Information We Might Ask For
If you book a place on a workshop then we may ask for additional data. Typically this will be a telephone number so that we can let you know if anything changes, your dietry requirements and allergies if we are catering. This data will only be kept until the course is completed.
How we collect Information
What we won’t do with your data
We will never sell your data, and we will never share it with other organisations for the purposes of their own marketing. We are not involved in any data swapping schemes.
Make it stop
If you no longer wish to receive our emails, you can opt of this service at any time by clicking the unsubscribe link in the mailout or by contacting us and letting us know your wishes.
Our data protection supervisor is Zed Gregory, they can be contacted at email@example.com
Queer hearted uses Google Analytics to collect information about visitor patterns on our website. Google Analytics stores information about which¬ pages are visited, how long each visitor spends on the site, how they got here and which pages are visited. This Analytics data is not tied to personally identifiable information - your personal information such as your name and address is not stored and therefore cannot be used to identify who you are. You can find out more about Google's position on privacy as regards its analytics service.
Privacy and the Law
The Law on Data Protection is derived from various pieces of legislation including the Data Protection Act and the incoming General Data Protection Regulation or GDPR, to which all organisations based in the UK will need to be compliant by May 2018. The GDPR states that personal data can only be ‘processed’ (i.e. collected, stored and analysed) if there is a legal ground to do so. The GDPR provides six legal grounds under which personal information can be legally processed. The grounds for processing that are most relevant to Queer Hearted’s use of your data are:
1) Consent: where you have given us clear consent for us to process your personal data for a specific purpose – i.e. to join our mailing list
2) Contract: where processing your data is necessary for us to complete a contract that we have entered with you – i.e. to let you know the details once you have booked an event
3) Legal Obligation: where processing your data is necessary for us to comply with the law – i.e. to report a sexual assault with the victims consent
4) Vital interests: where processing your data might be necessary to protect your safety or your life – i.e. to follow up a serious safeguarding concern
5) Legitimate interests: We may require your data to pursue our legitimate interests in a way which might reasonably be expected as part of running our business and which does not materially impact your rights, freedom or interests. - i.e. to analyse monitoring information of specific audiences
Documentation – the use of photographs, audio and video data
After May 25 2018, Queer Hearted will seek consent to collect and hold digital photographs, audio and video files. This consent will be specific, time based and the data will only be collected and processed when the company has a Legitimate Interest for doing so.
Right to be Forgotten
Finally, Queer Hearted, will be happy to provide you with all the data that we hold on you and to delete it from our records if requested. If you wish to see or delete the data that we hold on you, we will need to see an original piece of primary identification such as a passport or driving license before we will be able to release the information. Once you have made a request we will respond within 30 days as required by the GDPR legislation. If you have a request please, contact our data protection supervisor firstname.lastname@example.org